CVE-2015-0235

Опубликовано: 28 янв. 2015

Источник: nvd

CVSS2: 10

EPSS Высокий

Описание

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

Ссылки

http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/
Third Party Advisory
http://linux.oracle.com/errata/ELSA-2015-0090.html
Third Party Advisory
http://linux.oracle.com/errata/ELSA-2015-0092.html
Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html
Mailing List
Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html
Mailing List
Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142296726407499&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142721102728110&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142721102728110&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142722450701342&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142781412222323&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=142781412222323&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://marc.info/?l=bugtraq&m=143145428124857&w=2
Issue Tracking
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html
Exploit
Third Party Advisory
VDB Entry
http://rhn.redhat.com/errata/RHSA-2015-0126.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*

Версия от 2.0 (включая) до 2.18 (исключая)

Конфигурация 2

Одно из

cpe:2.3:a:oracle:communications_application_session_controller:*:*:*:*:*:*:*:*

Версия до 3.7.1 (исключая)

cpe:2.3:a:oracle:communications_eagle_application_processor:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_lsms:13.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:9.7.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:9.9.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:10.4.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:11.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:12.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_border_controller:*:*:*:*:*:*:*:*

Версия до 7.2.0 (исключая)

cpe:2.3:a:oracle:communications_session_border_controller:7.2.0:-:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_user_data_repository:*:*:*:*:*:*:*:*

Версия от 10.0.0 (включая) до 10.0.1 (включая)

cpe:2.3:a:oracle:communications_webrtc_session_controller:7.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_webrtc_session_controller:7.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:exalogic_infrastructure:1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:exalogic_infrastructure:2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*

Версия до 5.1.24 (исключая)

cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*

cpe:2.3:o:oracle:linux:7:0:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Конфигурация 4

cpe:2.3:a:redhat:virtualization:6.0:*:*:*:*:*:*:*

Конфигурация 5

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.11.1 (исключая)

Конфигурация 6

Одно из

cpe:2.3:a:ibm:pureapplication_system:1.0.0.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:pureapplication_system:1.1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:pureapplication_system:2.0.0.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_access_manager_for_enterprise_single_sign-on:8.2:*:*:*:*:*:*:*

Конфигурация 7

Одно из

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Версия от 5.4.0 (включая) до 5.4.38 (исключая)

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Версия от 5.5.0 (включая) до 5.5.22 (исключая)

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Версия от 5.6.0 (включая) до 5.6.6 (исключая)

EPSS

Процентиль: 100%

0.89535

Высокий

10 Critical

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2015-0235

ubuntu

больше 10 лет назад

CVE-2015-0235

redhat

больше 10 лет назад

CVE-2015-0235

debian

больше 10 лет назад

Heap-based buffer overflow in the __nss_hostname_digits_dots function ...

GHSA-jwcp-p679-fcr4

github

около 3 лет назад

ELSA-2015-0092

oracle-oval

больше 10 лет назад

ELSA-2015-0092: glibc security update (CRITICAL)

EPSS

Процентиль: 100%

0.89535

Высокий

10 Critical

CVSS2

Дефекты

CWE-787